HTML encode
HTML encode
- Started
- Last post
- 7 Responses
- UndoUndo
does anyone use the php htmlspecialchars() function or asps Server.HTMLenode and Server.URLencode as standard practise to prevent code execution in forms??
thanks
- UndoUndo0
anyone?
- mirola0
not sure what you mean.
- UndoUndo0
do you repace html chars from form submissions with their safe equivalents??
like on here you can't post code as this system strips out some of the chars
- mirola0
i use strip_tags for that
- UndoUndo0
do you not use htmlspecialchars??
- mirola0
i use urlencode cos i'm paranoid but probably htmlspecialchars is more efficient
- heavyt0
i use it.
TR1